3 matches found
D-Link DIR-2150 <= 4.0.1 Multiple Vulnerabilities
D-Link DIR-2150 devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2022-40720
The CVE-2022-40720 issue affects D-Link DIR-2150 routers (firmware 4.0.1) via the Dreambox xupnpd plugin, which listens on TCP port 4044. The root cause is improper validation of a user-supplied string before it is used in a system call, enabling network-adjacent attackers to execute arbitrary co...
CVE-2022-40720
This vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Dreambox plugin for the xupnpd service, which listens on...